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[57] ABSTRACT 

An object tracking, communication, and management sys- 
tem for a laptop computer or similar device, wherein a 
beacon or transceiver in the computer implements file integ- 
rity or device recovery steps. The beacon protects data, or 
transmits files or data from computer storage back to the 
owner or authorized party, either automatically or in 
response to a request for data recovery, and may broadcast 
a signal for tracking and recovery of the computer after a 
theft Preferably the system also operates in a normal mode 
to provide or acquire files or data, to or from a remote 
location, as either requested by the operator or by a third, 
calling or transmitting party, or automatically, for normal 
communications or data upkeep. When activated as a secu- 
rity device it implements strategic machine control including 
enabling, disabling, or modifying functions of the computer 
and communication of data. The system includes a beacon 
with preferably both a transmitter and a receiver, internal 
security logic, and external system elements for locating the 
beacon via either RF tracking or the communication of its 
position coordinates back to the owner via the transmitter. A 
combination of hardware and/or software within the beacon 
and the host system initiates and coordinates operation of the 
aforementioned communications or security features. 
Tamper detection logic implemented in software or hard- 
ware responds to tampering or removal of the beacon or 
other components by alerting via the transmitter and/or 
disabling functionality of the host Preferably low level 
codes operate at the bios level to assure effective operation 
even when higher level software or plug-in components 
have been overridden or removed. 

18 Claims, 6 Drawing Sheets 




04/02/2002, EAST Version: 1.03.0002 



U.S. Patent May s, ms sheet i of 6 5,748,084 



r 




CD 

E 



Ui u 

G Cl 
O o 



04/02/2002, 



EAST Version: 



1 . 03 . 0002 



U.S. Patent May5, 1998 Sheet 2 of 6 5,748,084 




04/02/2002, EAST Version: 1.03.0002 



U.S. Patent May 5, 1998 Sheet 3 of 6 5,748,084 



o 

Oh 

E 

00 



OQ « 



o 






















*5b 




ory 




T 




e 




4—1 




Me 




curi 








co 








CO 



E 






si 
















o 

'5b 
o 


Mo 


pu 


itoc 


03 






•—I 


C3 








- Q 









CO 

O 
O 

Ou 
O 



A 
V 



O 



-2 o oi 



a 
U g 








.5 


ace 








c 




o 

JZ 


Int 









<u 




u 


<L> 
C 


rfa 


O 




ph 


Int 


icro 


ker 




eg 




CU 




CL, 




00 




<D 

CO 
CO 
Qu 
00 



IT) 



3 
a, 

E 
o 
U 
o 

LO 

73 
c 

CO 



£ 2 

c 
o 

u 



-*—» 

Or 
E 

o 

> U 

Q 



o 



Q 



04/02/2002, EAST Version: 1.03.0002 



U.S. Patent May 5, 1998 Sheet 4 of 6 5,748,084 



oo 
H 

o 

Q 

2 
< 

u 
< 

OS 

tu 
H 
2 

< 
Cl 

00 

tart 

Q 



< 

0 
u 

Cu, 



H 

3 

oo 



2 
O 
U 
< 

CQ 
v 



r~> ool 



A 
V 



&s 

O 
oo 

00 
ID 

u 

O 

ai 
a< 



oS 
O 

S 

w 



Q w 

< s 

K Q 



Q 
U 
ii 
o 

00 
>— I 

Q 



> 



O 







OS 




TTE 




< 


• — <l 


CO 





\ 



o 
o 



04/02/2002, EAST Version: 1.03.0002 



U.S. Patent 



May 5, 1998 



Sheet 5 of 6 



5,748,084 




04/02/2002, EAST Version: 1.03.0002 



U.S. Patent 



May 5, 1998 



Sheet 6 of 6 



5,748 




04/02/2002, EAST Version: 1.03.0002 



BRIEF DESCRIPTION OF THE DRAWINGS 



5,748,084 

1 2 

DEVICE SECURITY SYSTEM neither readily detected nor easily removable. In that posi- 
tion it includes or controls a communications link which is 

FIELD OF THE INVENTION preferably a two-way RF link, such as a cellular phone link. 

This invention relates to a system for locating, commu- f^, a security module operates or controls the device to 

nicating with and managing expensive assets and in particu- 3 initiate or perform object location and file integrity or data 

iar laptop computers and other portable electronic devices security functions. 

that include a microprocessor and memory. The security module includes file (Le., data) security and 

device security functions, which are initiated upon receipt of 

BACKGROUND an actuation signal indicating theft of the computer, and 

As computers and other expensive consumer electronic 10 which thereafter utilize battery power from the laptop's 
devices become smaller and more portable, the risk of their power pack and available resources to preferentially imple- 

being stolen increases dramatically. Of particular concern is menl We integrity and tracking/alarm functions. Preferably 

the rising rate of laptop computer theft. Recent reports * l disables certain portions of the computer to conserve 
indicate that laptop computers are being stolen at the rate of power to effect a set of priority tasks. The actuation signal 

1500 a day in the United States alone, and account for almost 15 is preferably a broadcast signal, sent over a regional area 

a billion dollars in losses annually. Even more important oncc mc owner learns that the computer has been stolen; 

than the actual dollar value of losses posed by this trend is however actuation may also be triggered by an internal 

the potentially devastating loss of the crucial information alarm condition, for example a signal indicative that the user 

and data files contained on the stolen computers. Presently. nas failed to cnter a required code or has attempted to 

business people store everything from addresses to corporate 20 remove or disable a component The file integrity or 

secrets on their laptop computers, and loss of this data can tracking/alarm functions preferably include at least one and 

be of a magnitude to make the loss of the computer hardware preferably more of the operations of broadcasting out critical 

itself seem ^significant It has even been reported that mes > destroying or encrypting files, and transmitting a 

foreign governments hire spies to steal the laptops of For- tracking RF signal such as a cellular phone signal with a 

tune 500 employees in order to obtain corporate secrets. 25 c<x * e or message identifying the stolen computer. 

Solutions are needed for this and related theft problems. 
Unfortunately the approaches that have in the past been 

directed to the recovery of stolen items have proved too FIG. 1 illustrates a beacon-equipped laptop computer in 

impractical to be effective against this problem. Solutions ^ accordance with the present invention; 

like those offered for automobiles, incorporating large trans- FIG. 2 illustrates a physical layout of the beacon in one 

imttcrs or GPS receivers and position data transmitters, are embodiment of the invention; 

too unwieldy for incorporation in a laptop, or their imple- .... ^, - . __. . . 

mentation would be economically prchiMive. or result in . 3 mustrates a F tete ^ ed embodiment of the 

poor performance when located wimin a building. „ invention «**>>™**i via cellular telephone; 

A number of security systems designed particularly for na 4 interconnection of the beacon in a laptop 

laptop computers have not been effective. Alarms and ? om ^ tCX and ,ts Connections with various parts of the 

motion sensors are susceptible to false alarms which may host computer svstcnr ' 

quickly frustrate the user into not using them. Additionally, 5 shows a cut-away view of a laptop computer with 

these devices do nothing after the computer is stolen. ^ the beacon and an antenna inside; and 

Software solutions which control the computer to automati- FIG. 6 illustrates another embodiment of the invention 

cally dial up a predetermined number have shown limited configured to perform security and recovery within a paging 

effectiveness, probably because they can easily be removed network. 

or because they simply do not function if the stolen com- 

puter is not plugged into a phone line. 45 DETAILED DESCRIPTION 

SUMMARY OF THE INVENTION ^ P referred embodiment of the present invention 

addresses the foregoing problems using an existing cellular 

These and other problems are addressed by the system telephone network to provide a novel and cost-effective 

and devices of the present invention for the location, com- solution to the problem of laptop theft while at the same time 

munication with, and management of small electronic 50 providing a complete two-way mobile communications and 

devices, especially laptop computers but also other asset management system. In this embodiment, a beacon 

microproces sor-containing devices or instruments. For sim- comprised of a cellular transceiver and a modem is installed 

plicity laptop embodiments are discussed. A tamperproof in the laptop computer or electronic device which is to be 

beacon unit including a transponder or transceiver is placed protected, in such a way that removal or disabling of its 

within the laptop computer. Under normal circumstances the 55 operative elements is difficult or will impair the normal or 

beacon implements a standard communication function for useful operation of the computer. The transceiver is config- 

the general communications needs of the device such as ured in a manner known in the art to send and receive data 

e-mail, voice, data, fax. internet or other communication or programs, so as to implement the general communica- 

task. When theft of the computer occurs, however, the rions and management needs of the end-user under normal 

beacon is activated with a security control program to secure 60 circumstances; but it is also configured as described further 

crucial data in the computer's storage, to enable or disable below for data recovery or the tracking of the computer after 

functions of the computer, and to either transmit or destroy a theft, in which case it operates to expedite return of the 

or hide sensitive data. The beacon's transmission signal is stolen computer and preferably also transmit important data 

preferably also trackable to locate and recover the stolen to the rightful owner; to protect the integrity of the data 

computer. $5 contained on the machine; to assist in the capture of the 

In one embodiment the device resides in a laptop com- thief; and to serve as a deterrent against theft. This operation 

puter and is largely incorporated in the mother board so it is substantially enhances value, yet is achieved at little addi- 
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tional premium over the cost of the basic communications 
hardware. Implementation of such security features takes 
several forms in different embodiments of the invention 
described below. 

FIG. 1 shows a beacon equipped laptop computer 100 of 
the present invention configured for operating within a 
terrestrial cellular network, represented by relay station 110. 
Mobile communications of all types are relayed between the 
laptop computer and the local cellular transceiver. Such 
communications may consist of voice, data, faxes* e-mail, 
pages, file transfers etc. and may be initiated by either the 
laptop computer user or a calling party. Thus in this 
embodiment, the computer contains a cellular phone 
transceiver, and this transceiver is activated by various 
voluntary or automated applications, to effect the above- 
enumerated communications functions in a manner known 
in the art. That is. it may be manually initiated by a user 
calling out, connecting to another computer or network, and 
sending or receiving data, or it may include software of a 
type known in the art to effect automatic file transfer and 
data backup with a remote host or network, at scheduled 
intervals. The substantial functionality implemented in this 
embodiment of the invention allows the major hardware 
components to be subsumed under the cost of a necessary 
hardware accessory application, such as a cell modem file 
saver, for which the high cost is acceptable for many users 
and the marginal cost of the security -specific hardware and 
software far implementing the invention, described further 
below, is low. 

As noted, the security system includes a cellular phone RF 
communications assembly. This device transmits radio 
waves so that an external tracking circuit may pinpoint the 
location of the device by suitable detection e.g., using a 
two-point mobile receiver/signal comparator such as a direc- 
tional finder mounted in a police vehicle. For a cellular- 
based system such tracking can be effected largely auto- 
matically using existing cellular technology which monitors 
broadcast i.d. and signal strength in each cell, supplemented 
with the detailed signal evaluation such as is employed for 
example for triangulating from cells to pinpoint the source 
of emergency (911) cellular telephone calls. FIG. 1 also 
illustrates a tracking apparatus 120 for locating the laptop 
computer by monitoring its RF transmissions emanating 
from the beacon. These RF signals may be followed to track 
the computer to its new location. 

If the computer is stolen the beacon is advantageously 
also activated to secure its data. This is done in one or more 
of several ways; it operates to recover or destroy important 
data, or to disable the computer. The particular security 
measures to be effected may be set in advance, or may be 
controlled by an external communication, in which case the 
user or law-enforcement authorities may make the decision 
as to which of these steps is appropriate. 

A physical design of the preferred embodiment is illus- 
trated in FIG. 2. Key aspects of this design are the integra- 
tion of device components, having small size and low- 
profile packaging into the layout of existing laptop computer 
designs. FIG. 2 illustrates a small hybrid-packaged beacon 
101 using a loop antenna 102 integrated into the computer 
housing. 

In general, a cellular embodiment of the beacon is com- 
prised of the various circuit elements shown in FIG. 3. These 
include a cellular transceiver 10. a data modem 20, a 
back-up battery 25, a rmcroprocessor 30. memory 40. addi- 
tional security logic 45. a phone line interface 50. a micro- 
phone and speaker interface 55. an antenna 60. and connec- 



4 

lions 70, 72 to the host computer and its phone and 
microphone jacks 81. 82. 

The beacon may be implemented in a removable package 
that communicates with the laptop processor or various 

5 sybsystems thereof via a cryptographic exchange, to effec- 
tively prevent unauthorized removal or bypassing of its 
security logic. As discussed more fully below, various power 
or device control signals may be routed through or from the 
beacon, such that it disables parts of the laptop when the 

10 device is stolen, for example by erasing the hard disc, 
removing the drive power, or otherwise. It may also initiate 
a locally detectable alarm, such as an alarm sound or a theft 
message displayed on the screen. 
As shown in FIG. 4 and FIG. 5 the beacon is built-in to 

15 the computer 100 and has access to various system resources 
such as the hard drive 102 and the battery 104. Preferably, 
as shown, the battery power for (he laptop is routed through 
the beacon, which controls a switch to cut power to the 
computer 100 or various subsections thereof. The beacon 

20 communicates with the computer via the I/O logic 108 and 
the beacon has connections to the interface ports 112 of the 
computer, e.g., to the phone jack and microphone jack on the 
back of the computer. In addition, as shown in FIG. 5. the 
antenna 60 for the beacon 101 is incorporated into the design 

25 for the computer allowing many possibilities for different 
antenna configurations. In particular, die antenna may be 
formed by suitably-dimensioned conductive paths on a flex 
circuit or by metal tape adhered to the laptop housing or 
cover, or otherwise positioned to enhance its sensitivity 

30 and/or improve its reception or operation. Preferably, a 
simple circuit coupled to the antenna confirms antenna 
integrity, Le., provides an internally-detected alarm indica- 
tion if the antenna is cut or removed 

35 It is envisioned that the beacon itself be permanently 
attached to the computer, however it is possible that for the 
purposes of upgrading its functionality it may be made as a 
removable chip or assembly. 
In either case, additional security is preferably achieved 

40 by configuring the beacon such that the computer does not 
function properly without the beacon in place. The invention 
contemplates several ways of implementing this operation, 
including logic verification of hard-wired connection or 
function of critical components, such as by an antenna check 

45 circuit as described above. In an alternative embodiment of 
the invention, the beacon is contained in a removable 
PCMCIA card or other upgradable type of package in 
combination with firmware or other logic which assures that 
only authorized users can remove it or change it In such an 

30 embodiment, when the PCMCIA or other upgradable pack- 
age is removed by an unauthorized person, the computer 
ceases to function, rendering it valueless. Such operation 
may be implemented by using access control software which 
informs the computer through password verification that an 

53 authorized person is removing or upgrading the beacon. The 
beacon may also contain a serial number or other identifi- 
cation mechanism to inform the host computer of its identity. 
In other or further tamper protection implementations, when 
the beacon determines that the antenna has been destroyed 

go or tampered with, it actuates its various interna] security 
protocols described below. 

In additional embodiments, the invention contemplates a 
system wherein an external operation stimulus is provided to 
ensure that the beacon is in place and operating normally. 

65 This external stimulus may be, for example, a periodic radio 
or telephone message from outside which resets or enables 
the computer for twenty-four hours. In that case, when the 
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computer is reported stolen, this external message is control codes implement at least some of the security 

withheld, and failure to receive the message initiates the features of the device. Such features may include the dis- 

complete disabling of the computer; i.e., the beacon shuts abling or interruption of power to all or to specific parts of 

the computer down when it has not received an authorization tbe computer, the sounding of an alarm, or the erasure of the 

call via cellular telephone within a twenty four hour interval. 5 nard invention also contemplates the provision of 

In other embodiments, the security device may also be other security cod" which instruct the beacon to initiate a 

triggered by actual receipt of a message broadcast by the file-transfer call, in which case the microprocessor stores in 

user indicating theft A similar triggering condition may be m ^ Dames or types of files to be transferred and the 

implemented by use of the CDPD network to require a user <^™<= ™*ber. fa* number or e-mail address to which 

tologontothelaptopandacquiresessiontickets.aswiththe 10 * e ^ cs arc , to transferred, as well as the time for the 

KERB EROS system, for example. ***** to take P lacc ' ^ ^coprocessor then signals the 

. . . . . . A . host computer's low level beacon interface software to 

In addition to the hardware communicaaons beacon, the ^ ^ of ^ low ^ sccwi code 

system also includes interface software present on the laptop m rforriied b mc sccurit ^ lo ^ c which 

computer which .provides the user mterface wiA the com- po Wer switchin and othcr simplc hardwarc 

mumcations and management features of the beacon and 1 5 CQ ^ trols 

provides a means for the user to access all of the features of Bii *„ . . ^ , A „ .... . . , c 

\* . . ^ ~ . M m . . , By low level security codes we distinguished from 

the beacon. Certain aspects of the software are preferably ' . . . . ' . ^ . , . * . . . . . 

« . . t # »|. . - JV. M other higher level codes that are interpreted by the high-level 

incorporated into the laptop computer s built in firmware for ^*c user interface The ouroose of the low-levelcodes is 

reasons of security, as described further below. , °? user interrace. me purpose or tne low level coaes is 

' 20 to perform the emergency functions under extreme circuro- 

This beacon operation is as follows: incoming commu- sta nces. This includes the event that the high-level user- 

nications signals are received through the antenna by the interface software is removed. That is, the low-level instruc- 

cellular transceiver circuitry. This circuitry passes on the raw ^ons are executed at a level in the computer at which the 

received signals to the protocol logic and data modem. The removal of the means of interpreting and executing instruc- 

protocol logic and data modem determine what type of tl ons would the computer to cease to function at all. 

signal is being received and hence which mode the beacon » A prcfcrrcd location for mcsc instructions to be handled is 

should be operating in. The wireless modes of operation within the computer's on-board bios. In this manner, the 

include an incoming voice telephone call, an incoming fax, low-level security features are made secure against tamper- 

an incoming data modem call, or an incoming CDPD packet mg; for example they are not impaired if a thief erases the 

This information is passed onto the microprocessor which nard ^ changes an accessory board, 

determines what actions need to be taken within the beacon, m level codes perform functions which are less 

and what signals need to be sent to the host computer. The an<1 ^ d b ^ raicr0 p rocessor t0 me user 

laptop computer preferably relays or passes the information intcrface software . ntst codes ^ kclude ^nals that an 

to, the beacon wterface software for processing. automatic transfer is taking place and that the user need not 

For an incoming voice call the microprocessor alerts the 35 be alerted, or codes for other such secondary functions. It is 

host computer via an interrupt or other hardware notification envisioned that many functions which ideally would be 

route. The interface software determines the appropriate executed by low -level security codes may in fact be required 

response depending upon the state of the computer and the t0 operate through calls to higher level security codes due to 

user's settings. If the computer is in use, the beacon interface the constraints of the operating system. For example many, 

software may provide a visual indication that an incoming ^ if not ^ fu c access functions may be dependent on the 

voice call has been detected and request that the user either operating system present on the hard disk. The removal of 

answer the call or pass it on to a voice messaging system. If the operating system would render any access to files 

the computer is not in use, an audio alert can be generated virtually impossible both for the thief and the beacon. This 

or the call passed on to an automatic messaging system. limitation may be avoided by protecting vital files automati- 

In the event of an incoming data or fax call the micro- 45 cally from being removed. When the beacon is activated in 

processor instructs the data modem to connect and then theft mode it might disable all write access to the hard drive 

waits for the modem to produce data. Once data begins to be to protect the operating system, thus assuring itself access to 

received, the microprocessor temporarily stores the data in the files which need to be transmitted. As long as the file 

memory and alerts the host computer. The host computer system remains in place then the beacon can perform its 

passes the data to the beacon interface software which 50 tasks. The protection of the operating system or of certain 

queries the beacon as to what kind of data it is. Depending files may also be achieved in one embodiment by controlling 

on the type of data, an alert is generated for the user the file, permissions of each file to change certain files to 

displaying information about the data, its origin, and the read-only or archive status in order to protect them until 

length of the transfer. For faxes and e-rnaiL applications may transmission. 

automatically open for the user to view the data or to 55 Another type of incoming data is that of CDPD cellular 

immediately respond via the already established connection. packets. Such packets may contain e-mail, pages, etc. and 

This conventional communications operation is altered might also contain Low and high level control codes. These 

when the security functions become active. packets are examined by the microprocessor and passed on 

In that case, when an external communication is a post- to the user interface software, 

theft call to initiate security operation, the incoming data call 60 Another function of the microprocessor is to arbitrate 

preferably also contains low-level beacon control com- between incoming cellular transceiver data and the phone 

mands which are interpreted by the beacon prior to the line interface. It is possible that the computer may be 

alerting or passing of the data to the computer. Such codes, plugged into a phone line and receive a cellular call at the 

for example, may be present in a header which the beacon same time. Several actions may have to take place. If the 

reads and strips before passing the remaining data on to the 63 incoming cellular call is a voice call then the protocol logic 

beacon interface software on the computer. Id a practical alerts the microprocessor which may signal the host com- 

embodiment of one aspect of the invention these low -level puter and establish a connection. If the incoming call is a 
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cellular data calL the protocol logic tells the microprocessor With this operation information system managers become 
whether the modem is already in use on the phone line. If able to inventory the software and hardware configurations 
this is the case, since there is only one modem, a decision of all their company *s machines, regardless of their location 
must be made whether to disconnect the phone connection at the time. They can also update software automatically 
and reconnect on the cellular. This decision may be preset by 5 overnight or provide realtime systems support by logging 
user preferences in the high level software or may be set in onto the portable machine remotely and taking control of its 
the microprocessor itself. In any case only one data call can functions. A good use might be the collection and redis tri- 
be maintained at a time. This limitation may be remedied by bution of shared database Mies at the end of the day such as 
the inclusion of a second modem in the beacon. The same with a program like LOTUS NOTES. In this case, the 
problem arises if the cellular modem is in operation and an J£) database files would be transmitted by all mobile machines 
incoming call arrives via the phone line. Again the protocol back to a central computer, which collates them and retrans- 
logic and the microprocessor arbitrate between the cellular mits updated database files to the mobile machines via their 
transceiver and the phone line. It will be understood that cc n modem beacons. 

incoming land-line calls can contain voice, data, fax. file under normal circumstances the beacon functions as the 

transfers and security codes just as in the case of cellular ^ general co,^^^ provider for the host computer, 

calls described above. When the computer is stolen however, the beacon operates 

The microprocessor also arbitrates and controls all out- at a CODCealed level as a special controller and 

gomg calls. Outgoing calls from the beaco* 1 may be uiitiated security broadcast th us prov iding the means to 

by the user m « convenfonal manner through the user J mnt ^ ^ Lmputcr. These 

interface software, for example by entering an e-mail and , . r , , . , , . . , , 1 . . 

clicking "SEND", or theymaV be mitiatedm the high-level 20 ^f™™ ^^^ d b V * e low - lcvcl codcs 

user interface software or the low-level security software as aescnbed above * 

automatically. When the microprocessor receives data from Briefly, when the computer is stolen, the user determines 
the computer to transmit it determines the most appropriate whether there are any critical files which must be recovered 
method of transmission and initiates a call. This determina- whether the machine is found or not. The user sends a 
tion may also be tagged in the higher- level software but must 25 broadcast to initiate transfer of these files. This is done either 
be agreed upon by the microprocessor according to the state through a central clearing house service center, which may 
of the beacon. In most circumstances the microprocessor for example be operated by a computer security company 
preferably is set to choose the phone line interface, if that provides broad-area RF/cell phone coverage to receive 
present, for the outgoing call due to its generally higher and temporarily store such data, or through the use of 
bandwidth and lower rates of charge. If the phone line is in 30 additional software e.g., emergency communications soft- 
use by the user or another machine, the miaoprocessor ware present on another machine. This additional software 
judges the urgency of the transmission and may choose to may be included with the user interface software for instal- 
either wait for the phone line to be free or to transmit the data lation on the users non-mobile computer and configured to 
via the cellular phone. If the beacon determines that the unit carry out automatic back up and other management func- 
is not plugged into the phone line, then all operations are 35 tions of the mobile computer. In any case in a theft/ 
performed via the cellular connection. notification mode the user determines which files need to be 

The types of transmission possible are the same for recovered and a request in proper format is sent via the 

outgoing calls as those described above for incoming trans- cellular network to the laptop computer with low level 

missions. Faxes, e-mails, files, internet connection and voice security codes. Upon receipt of the lower level codes, the 

calls can all be initiated either by the user or automatically 40 document recovery request is treated as a priority task and 

for transmission. Voice, e-mails and faxes, and internet the codes are executed as soon as possible, resulting in the 

connection calls are generally user initiated while automatic transmission of the vital files back to the owner. This step of 

transmissions may include some e-mails and some file the security protocol may be augmented by also carrying out 

transfers such as automatic back up file transfers, and the the destruction of this data on the laptop, for example by file 

security transfers described below. 45 deletion or overwriting data on the hard disk. 

It is envisioned that the automatic file transfers will be The determination of which files to send over the RF link 

useful for both emergency and non-emergency situations. can also be achieved through application software running 

Non-emergency file transfers are transfers such as routine on the the computer without the intervention of the user. In 

back up of files either back to the user's home computer or this case, when the computer detennines itself to be stolen 

corporate network, or to a commercial data warehousing 30 either through an incoming RF broadcast informing it of its 

facility for protective storage. The automatic back up tunc- "stolen" status, or through one of the additional means 

tions determine which files to transmit in the same manner described below (i.e„ tamper detecting sensors or software 

as for emergency file transfers, as described below, including tamper detection), the application software itself determines 

transfer based on modification date and type of file as which files need to be transmitted. This determination may 

determined by the file extension, as well as any specfic files 55 be based on the type of file as indicated on an MSDOS 

or directories specified by the user through application system by a three letter file extension, or based on the date 

software. It is envisioned that a certain user might for of last modification, or the directory under which the files 

instance desire to back up all word processing documents were contained, or by a combination of these methods. For 

every three days automatically, whether connected to a example, the computer might send all word processing files 

phone or a network or not. If there is no other method 60 with the file extensions "TXT 1 or ".DOC* which have been 

available at the time, the back up software then compresses modified since the last automatic backup, 

the files to be backed up and sends them over a dial-up The security functions described above may also be 

connection using the cell modem. Preferences may be set as activated automatically through internal means present on 

to when the transfers would take place so as to minimize the the computer rather than through an RF signal. In accor- 

calling charges. Other management functions are available 65 dance with this aspect of the invention, sensors are provided 

through the use of additional software and the ceil modem that detect various physical parameters related to the cora- 

beacon. puter such as when the case is being opened or when the 
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antenna or various pieces of the internal hardware are TDMAand the pager reception is synchronized with a synch 

removed or tampered with, and the detected sensor states signal to turn on during its designated message interval. The 

actuate the security logic to set off the various security data it receives. e.g. several message words or more as the 

features of the beacon. When these sensors detect unusual technology permits, is passed to the activation logic 206 

activity such as removal or physical tampering with a lock. 3 which in this case corresponds in part to the security logic 

switch, board or antenna, the security logic identifies an function described above; it compares the beacon ID number 

alarm condition and actuates the beacon so it performs such to the received address or may determine if an additional 

actions as erasing the hard drive, calling for help, transmit- message designating a "stolen" state is received. It then 

ting important files or the like. In addition to hardware performs one or more of the transmission and internal 

sensors, specific applications running on the computer may Q security actions described above. 

be configured to activate the beacon, for instance, when they Specifically, when the received pager message indicates 
detect unusual activity such as a failed password entry, an theft, the activation logic may pass an output actuation 
attempt to access a database, or an improper attempt to start signal to immediately initiate low-level or bios security 
the computer. functions, and also activate transmitter 208 to broadcast the 
The beacon may also contain its own back-up battery to 15 n) number stored in ROM 210. In general, data reception 
enhance the ability of the beacon to operate when power to capabilities of this embodiment may be limited, but the 
the main computer is removed or run down. Preferably, pager-based beacon may also receive designations of files, 
when the beacon has received a security code indication, the and may include or interface with a simple security control 
beacon communications handling section is set up to rec- unit to effect the disabling, selective erasure or file encryp- 
ognize and ignore non-important incoming calls which 20 tion operations described above for securing data. A second 
require expenditure of too much power or which are of a antenna 60a may be provided for the pager transmitter 208 
type that could not be handled without the use of the higher if accessary far a distinct transmission frequency; the pager 
level software. These incoming requests are simply logged antenna(e) may be distinct from that of the cellular phone if 
to be handled at a later time. Some low-level security codes one is present in the laptop. The ID may be sent out in the 
may also be stored in memory and either executed irnroe- ^ pager transmitter's call-received acknowledgement 
diately or executed immediately upon the powering of the protocol, confirming reception of the "stolen" message. To 
host computer. This prioritizing approach to post- theft com- aid in the tracking process, a GPS receiver may be included 
munication assures that the critical data recovery or security in some embodiments and the transmitter may transmit its 
tasks are implemented before the laptop power pack position coordinates; a separate transmitter or a pager trans- 
discharges, or that crucial tasks are identified and settings M mitter configured to transmit these few additional data words 
made to implement the tasks as soon as the battery is again may be used. 

charged. The invention thus constitutes a built-in communications 
Finally, as initially noted above, in a preferred embodi- apparatus which operates from the laptop power supply both 
raent of a system of the invention, the signals transmitted by to determine when the laptop is stolen and to implement data 
the cellular transceiver are externally tracked to deterrnine 33 security actions to recover files or prevent loss of informa- 
the location of the computer for recovery of the computer tion. Preferably it includes logic which operates on system 
hardware. This may be done by determining what cell of a inputs as well as user transmissions to undertake both 
cellular phone system the beacon is currently located in, machine-initiated and message-responsive measures, thus 
which in the case of cellular communications is a piece of assuring data security or recovery under all circumstances, 
information automatically derived by the system 40 Further by operating with low-level codes and a beacon 
management, and then either triangulating its position or integrated with the mother board it effectively prevents a 
tracking the beacon with a mobile direction-finding unit To stolen computer from being easily modified for sale, and 
conserve battery power, the non-data transmissions intended assures that the computer is trackable. 
for tracking may be programmed to occur only in response while the invention has been described above in connec- 
to an incoming request or notification, or may be broadcast 45 tion with specific embodiments and alternative 
at discrete intervals or at prearranged times. Thus, according implementations, modifications and variations thereof will 
to this aspect, the invention contemplates a cellular beacon occur to those skilled in the art in the light of the foregoing 
which operates mtermittentiy for tracking, and which sched- description. In particular, while the beacon has been 
ules or announces its intended time of operation in order to described in relation to the management of laptop 
conserve power while assuring that a recovery or tracking 50 computers, it is also applicable to control or monitor any 
force can efficiently direct its efforts to definite broadcasts electronic device such as a PDA, a movable piece of 
and intervals. industrial electronic equipment, and the like. In addition, the 
The invention may be implemented in a number of beacon need not contain all the functions described, but may 
embodiments, and while the above description sets forth contain only a subset of these functions. For instance the 
detailed modes of operation for a cellular phone embodi- 55 beacon may contain only a receiver which accepts security 
ment for which a transceiver and cell modem are available commands and operates as described to overwrite files or to 
for communication, other embodiments may be imple- shut down or restrict operation of data devices in the laptop, 
mented within the constraints of other communications or it may have only a transmitter which is activated auto- 
links. Thus, for example, an RF pager-based system may malically by the computer and transmits out files and 
receive its actuation signals, and receive messages desig- 60 tracking signals. While the preferred embodiment has been 
nating actions to be taken or identifying files to be secured- described as a system operating within the AMPS cellular 
e.g. erased or encrypted- and may transmit its ID or a phone network, ofoer ernbodiments of the present invention 
tracking signal via a pager or other transmitter. may operate under GSM, PCS. Pager. Satellite. LAN, or 
FIG. 6 shows such a system 200. In this embodiment the other wireless communication system. Accordingly, the 
RF signal in an antenna 60 is demodulated and amplified by 63 invention is intended to embrace all such alternatives, 
a receiver 202 and the demodulated transmission is fed to a modifications, variations within its spirit and scope, as 
protocol decoder 204. Briefly, transmissions are effected in defined in the following claims. 
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What is claimed is: 

1. A security system for a laptop computer of the type 
having a processor and a power supply with a memory and 
applications programs for data handling, such system 
including a beacon containing at least one of a receiver and 
a transmitter, security logic for determining when the laptop 
has been stolen or tampered with, and security means in said 
beacon responsive to a determination by the security logic 
for selectively controlling elements of said laptop computer 
to secure data stored therein, wherein said security means 
includes means for removing said data from memory and 
transmitting said data. 

2. A system according to claim 1, wherein said security 
means includes means for selectively disabling access to or 
operation of said memory. 

3. A system according to claim 1. wherein said memory 
stores data files and said security means disables computer 
access to at least a portion of said data files. 

4. A system according to claim 1, wherein said security 
means is operative to initiate a trackable RF transmission by 
said beacon and also to selectively disable higher function- 
ality of the laptop computer thereby assuring that battery 
power is applied first to a security transmission. 

5. A system according to claim 1, wherein said security 
logic forms said determination by processing an authoriza- 
tion code entered by a user to thereby initiate selective 
control of said elements in response to unauthorized use of 
said computer. 

6. A system according to claim 1, wherein said beacon 
operates in conjunction with applications software to nor- 
mally back up files via automatic transmission to a host. 

7. A system according to claim 1, wherein said beacon 
includes a receiver and a transmitter, and said system further 
comprises a data modem, wherein said security logic 
receives information in a transmission to determine that the 
laptop has been stolen, and thereafter controls said elements 
to effect recovery of at least one of said data and said laptop 
while conserving power in said laptop. 

8. A system according to claim 1. wherein said beacon 
includes a receiver and a transmitter, and said system further 
comprises a data modem, wherein said security means 
receives information in a transmission to identify data files 
in memory, and thereafter controls said elements to secure 
said data files. 

9. A system according to claim 8, wherein said security 
means secures said data by pa-forming at least one of 
encoding, erasing, overwriting, hiding and transmitting out 
said data. 
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10. A system according to claim 8. wherein the security 
logic communicates with the processor and calls bios to 
execute a security function so as to implement said function 
despite tampering with higher level features of the system. 
5 11. A system according to claim 8. wherein said Deacon 
transmits the identified files to a host. 

12. A system according to claim 11. wherein the beacon 
further coordinates a transmission time with a tracking 
receiver to thereby conserve battery power as it effects 

10 security tasks. 

13. A security system for a laptop computer of the type 
having a processor and a power supply with a memory and 
applications programs for data handling, such system 
including a beacon, security logic for determining when the 

15 laptop has been stolen or tampered with, and security means 
in said beacon responsive to a determination by the security 
logic for selectively controlling elements of said laptop 
computer to secure data stored therein, wherein said beacon 
includes a receiver and a transmitter, said system further 

20 comprises a data modem, and wherein said security means 
collects files for recovery, and thereafter controls said ele- 
ments to compress said files and transmit them to a host. 

14. A system according to claim 1. further comprising a 
physical sensor for detecting physical tampering, and 

25 wherein said security logic responds to the physical sensor 
to form said determination of tampering. 

15. A security system for a laptop computer of the type 
having a processor and a power supply with a memory and 
applications programs for data handling, such system 

30 Including a transceiver and data modem, security logic for 
determining when the laptop has been stolen or tampered 
with, and security means in said transceiver responsive to a 
determination by the security logic for selectively control- 
ling elements of said laptop computer to collect data files for 

35 recovery and transmit them to a host. 

16. A system according to claim 15, wherein said security 
logic responds to at least one of a physical sensor, a message 
received by the transceiver, and an applications program to 
determine that the laptop has been stolen or tampered with. 

40 17. A system according to claim 15, wherein said security 
means calls bios to disable operation of the laptop at a level 
that prevents access to data therein. 

18. A system according to claim 15, wherein said security 
means resides in a tamper-proof package coupled to said 

45 processor such that removal of said package disables opera- 
tion of the laptop. 

* * * * * 
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